The National Institute of Standards and Technology

Personal Identity Verification Program

Validation List for PIV Card Applications

The NIST maintains a validation list of all validated PIV Card Application (past and present). The list is maintained in ascending order of certificate numbers and is updated as new PIV Card Applications receive validation certificates from the NPIVP.

All questions regarding the implementation and/or use of any PIV Card Application located on the validation list should first be directed to the vendor.


Cert #	Product Name	Vendor	Issue Date	FIPS 140-2 validation certificate # and date	Product Details
1	PIV End Point Java Card Applet (Version: v1.08[1], v.1.09[2]) for Oberthur ID-One Cosmo 64 v5 Smart Card	Oberthur Card Systems	4/11/2006 [1] 6/12/2007 [2]	668 5/02/06 [1] 7/27/07 [2]	Optional PIV Data Object Implemented: * 1) Card Holder Facial Image 2) Card Holder Printed Information 3) X.509 Certificate for Digital Signature 4) X.509 Certificate for PIV Key Management 5) X.509 Certificate for Card Authentication
2	SafesITe FIPS 201 applet, Version 1.20 on Gemalto GemCombi'Xpresso R4 E72 PK Card	Gemalto Corp.	4/20/2006	691 07/20/06	Optional PIV Data Object Implemented:* 1)Card Holder Facial Image 2) Card HolderPrinted Information 3) X.509 Certificate for Digital Signature 4) X.509 Certificate for PIV Key Management 5) X.509 Certificate for Card Authentication
3	PIV Application on Hitachi MULTOS Smart Card, Hardware Version: AE45X1, Firmware Version 1.0	Hitachi, Ltd.	5/26/2006	732 01/25/07	Optional PIV Data Object Implemented:* 1) Card Holder Printed Information 2) X.509 Certificate for PIV Key Management
4	SETECS Inc.'s OneCARD^TM PIV-II Java Card Applet (Version 1.2) on Gemalto GemCombi Xpresso R4 E72 PK card	SETECS Inc.	6/6/2006	705 09/20/06	Optional PIV Data Object Implemented: * 1) Card Holder Facial Image 2) Card Holder Printed Information 3) X.509 Certificate for Digital Signature 4) X.509 Certificate for PIV Key Management 5) X.509 Certificate for Card Authentication
5	StepNexus PIV Application v4.2.1 on Keycorp MULTOS 64K Smart Card	Keycorp Limited	7/31/2006	pending	Optional PIV Data Object Implemented: * 1) Card Holder Facial Image 2) Card Holder Printed Information 3) X.509 Certificate for Digital Signature 4) X.509 Certificate for PIV Key Management 5) X.509 Certificate for Card Authentication
6	PIV card application version 19 on SafeNet Smart Card 400 (72K) SCCOS version 3.0	SafeNet Inc.	9/05/2006	823 8/22/07	Optional PIV Data Object Implemented: * 1) Card Holder Facial Image 2) Card Holder Printed Information 3) X.509 Certificate for Digital Signature 4) X.509 Certificate for PIV Key Management
7	ActivIdentity PIV End-Point Applet(Versions: 2.6.2.6 [1], 2.6.2.A1[2] and 2.6.2.A2[3]) on Oberthur ID-One Cosmo 64 v5	ActivIdentity Inc.	10/20/2006 [1] 09/20/2007 [2] 05/08/2008 [3]	880 11/30/2007 [1] 12/18/2007 [2] pending [3]	Optional PIV Data Object Implemented: * 1) Card Holder Facial Image 2) Card Holder Printed Information 3) X.509 Certificate for Digital Signature 4) X.509 Certificate for PIV Key Management 5) X.509 Certificate for Card Authentication Special Note: Optional key 9B (PIV card application administration key) is not supported (Ref: SP 800-73-1). As a result, support for following APDUs cannot be verified: (a) PUT DATA (b) GENERATE ASYMMETRIC KEY PAIR.
8	PIV Applet version 01 on J-IDMark 64 PIV	Sagem Orga Inc.	11/11/2006	774 5/17/07	Optional PIV Data Object Implemented: * 1) Card Holder Facial Image 2) Card Holder Printed Information 3) X.509 Certificate for Digital Signature 4) X.509 Certificate for PIV Key Management 5) X.509 Certificate for Card Authentication
9	CardLogix Credentsys-J PIV applet Version 2.3.0.8 on Atmel 72KB EEPROM (AT90SC12872RCFT) smart card	CardLogix, Corporation.	08/23/2007	917 2/13/2008	Optional PIV Data Object Implemented: * 1) Card Holder Facial Image 2) Card Holder Printed Information 3) X.509 Certificate for Digital Signature 4) X.509 Certificate for PIV Key Management 5) X.509 Certificate for Card Authentication
10	ActivIdentity PIV End-Point Applet (Versions: 2.6.2.6 [1], 2.6.2.7 [2] )on Gemalto SafeITe TOP DM GX4 Card	ActivIdentity Inc.	12/06/2007 [1] 05/08/2008 [2]	pending [1] and [2]	Optional PIV Data Object Implemented: * 1) Card Holder Facial Image 2) Card Holder Printed Information 3) X.509 Certificate for Digital Signature 4) X.509 Certificate for PIV Key Management 5) X.509 Certificate for Card Authentication Special Note: Optional key 9B (PIV card application administration key) is not supported (Ref: SP 800-73-1). As a result, support for following APDUs cannot be verified: (a) PUT DATA (b) GENERATE ASYMMETRIC KEY PAIR.
11	TecSec PIV Applet version 1.01 JCT (contact) on TecSec PIV Eagle Card - Contact [1] and TecSec PIV Applet version 1.0 JCL (contactless) on TecSec PIV Eagle Card -Contactless [2]	TecSec, Inc. Atmel, CPI Card Group, and Athena Smartcard	12/21/2007 [1] 12/21/2007 [2]	pending [1] and [2]	Optional PIV Data Object Implemented: * 1) Card Holder Facial Image 2) Card Holder Printed Information 3) X.509 Certificate for Digital Signature 4) X.509 Certificate for PIV Key Management 5) X.509 Certificate for Card Authentication
12	Athena PIV Applet Version 1.0 on Athena IDProtect Duo PIV	Athena Smartcard Solutions Inc.	04/21/2008	pending [1]	Optional PIV Data Object Implemented: * 1) Card Holder Facial Image 2) Card Holder Printed Information 3) X.509 Certificate for Digital Signature 4) X.509 Certificate for PIV Key Management 5) X.509 Certificate for Card Authentication

*The listed PIV card applications may support cryptographic algorithms as described in SP800-78 and declared optional in SP800-73-1. Agencies with requirements for optional algorithms should contact the vendor directly to obtain the usage modes for those algorithms.

Computer Security Division
National Institute of Standards and Technology
NIST is an agency of the U.S Commerce Department
NIST Privacy Statement/Security Notice
NIST Disclaimer and Privacy Notice
Page created on: January,19, 2006
Page updated on: May 9, 2008

Validation List for PIV Card Applications

Cert #

Product Name

Vendor

Issue Date

FIPS 140-2 validation certificate # and date

Product Details

PIV End Point Java Card Applet (Version: v1.08[1], v.1.09[2]) for Oberthur ID-One Cosmo 64 v5 Smart Card

Oberthur Card Systems

4/11/2006 [1] 6/12/2007 [2]

668 5/02/06 [1] 7/27/07 [2]

Optional PIV Data Object Implemented: * 1) Card Holder Facial Image 2) Card Holder Printed Information 3) X.509 Certificate for Digital Signature 4) X.509 Certificate for PIV Key Management 5) X.509 Certificate for Card Authentication

SafesITe FIPS 201 applet, Version 1.20 on Gemalto GemCombi'Xpresso R4 E72 PK Card

Gemalto Corp.

4/20/2006

691 07/20/06

Optional PIV Data Object Implemented:* 1)Card Holder Facial Image 2) Card HolderPrinted Information 3) X.509 Certificate for Digital Signature 4) X.509 Certificate for PIV Key Management 5) X.509 Certificate for Card Authentication

PIV Application on Hitachi MULTOS Smart Card, Hardware Version: AE45X1, Firmware Version 1.0

Hitachi, Ltd.

5/26/2006

732 01/25/07

Optional PIV Data Object Implemented:* 1) Card Holder Printed Information 2) X.509 Certificate for PIV Key Management

SETECS Inc.'s OneCARDTM PIV-II Java Card Applet (Version 1.2) on Gemalto GemCombi Xpresso R4 E72 PK card

SETECS Inc.

6/6/2006

705 09/20/06

Optional PIV Data Object Implemented: * 1) Card Holder Facial Image 2) Card Holder Printed Information 3) X.509 Certificate for Digital Signature 4) X.509 Certificate for PIV Key Management 5) X.509 Certificate for Card Authentication

StepNexus PIV Application v4.2.1 on Keycorp MULTOS 64K Smart Card

Keycorp Limited

7/31/2006

pending

Optional PIV Data Object Implemented: * 1) Card Holder Facial Image 2) Card Holder Printed Information 3) X.509 Certificate for Digital Signature 4) X.509 Certificate for PIV Key Management 5) X.509 Certificate for Card Authentication

PIV card application version 19 on SafeNet Smart Card 400 (72K) SCCOS version 3.0

SafeNet Inc.

9/05/2006

823 8/22/07

Optional PIV Data Object Implemented: * 1) Card Holder Facial Image 2) Card Holder Printed Information 3) X.509 Certificate for Digital Signature 4) X.509 Certificate for PIV Key Management

ActivIdentity PIV End-Point Applet(Versions: 2.6.2.6 [1], 2.6.2.A1[2] and 2.6.2.A2[3]) on Oberthur ID-One Cosmo 64 v5

ActivIdentity Inc.

10/20/2006 [1] 09/20/2007 [2] 05/08/2008 [3]

880 11/30/2007 [1] 12/18/2007 [2] pending [3]

Optional PIV Data Object Implemented: * 1) Card Holder Facial Image 2) Card Holder Printed Information 3) X.509 Certificate for Digital Signature 4) X.509 Certificate for PIV Key Management 5) X.509 Certificate for Card Authentication

Special Note: Optional key 9B (PIV card application administration key) is not supported (Ref: SP 800-73-1). As a result, support for following APDUs cannot be verified: (a) PUT DATA (b) GENERATE ASYMMETRIC KEY PAIR.

PIV Applet version 01 on J-IDMark 64 PIV

Sagem Orga Inc.

11/11/2006

774 5/17/07

Optional PIV Data Object Implemented: * 1) Card Holder Facial Image 2) Card Holder Printed Information 3) X.509 Certificate for Digital Signature 4) X.509 Certificate for PIV Key Management 5) X.509 Certificate for Card Authentication

CardLogix Credentsys-J PIV applet Version 2.3.0.8 on Atmel 72KB EEPROM (AT90SC12872RCFT) smart card

CardLogix, Corporation.

08/23/2007

917 2/13/2008

Optional PIV Data Object Implemented: * 1) Card Holder Facial Image 2) Card Holder Printed Information 3) X.509 Certificate for Digital Signature 4) X.509 Certificate for PIV Key Management 5) X.509 Certificate for Card Authentication

ActivIdentity PIV End-Point Applet (Versions: 2.6.2.6 [1], 2.6.2.7 [2] )on Gemalto SafeITe TOP DM GX4 Card

ActivIdentity Inc.

12/06/2007 [1] 05/08/2008 [2]

pending [1] and [2]

TecSec PIV Applet version 1.01 JCT (contact) on TecSec PIV Eagle Card - Contact [1] and TecSec PIV Applet version 1.0 JCL (contactless) on TecSec PIV Eagle Card -Contactless [2]

TecSec, Inc. Atmel, CPI Card Group, and Athena Smartcard

12/21/2007 [1] 12/21/2007 [2]

pending [1] and [2]

Optional PIV Data Object Implemented: * 1) Card Holder Facial Image 2) Card Holder Printed Information 3) X.509 Certificate for Digital Signature 4) X.509 Certificate for PIV Key Management 5) X.509 Certificate for Card Authentication

Athena PIV Applet Version 1.0 on Athena IDProtect Duo PIV

Athena Smartcard Solutions Inc.

04/21/2008

pending [1]

Optional PIV Data Object Implemented: * 1) Card Holder Facial Image 2) Card Holder Printed Information 3) X.509 Certificate for Digital Signature 4) X.509 Certificate for PIV Key Management 5) X.509 Certificate for Card Authentication

*The listed PIV card applications may support cryptographic algorithms as described in SP800-78 and declared optional in SP800-73-1. Agencies with requirements for optional algorithms should contact the vendor directly to obtain the usage modes for those algorithms.

668 5/02/06 [1]
7/27/07 [2]

Optional PIV Data Object Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication

Optional PIV Data Object Implemented:*
1)Card Holder Facial Image
2) Card HolderPrinted Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication

Optional PIV Data Object Implemented:*
1) Card Holder Printed Information
2) X.509 Certificate for PIV Key Management

SETECS Inc.'s OneCARD^TM PIV-II Java Card Applet (Version 1.2) on Gemalto GemCombi Xpresso R4 E72 PK card

Optional PIV Data Object Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication

Optional PIV Data Object Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication

Optional PIV Data Object Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management

880 11/30/2007 [1]
12/18/2007 [2] pending [3]

Optional PIV Data Object Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication

Special Note:
Optional key 9B (PIV card application administration key) is not supported (Ref: SP 800-73-1). As a result, support for following APDUs cannot be verified: (a) PUT DATA (b) GENERATE ASYMMETRIC KEY PAIR.

PIV Applet version 01 on
J-IDMark 64 PIV

Optional PIV Data Object Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication

CardLogix Credentsys-J PIV applet Version 2.3.0.8
on Atmel 72KB EEPROM (AT90SC12872RCFT) smart card

Optional PIV Data Object Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication

12/21/2007 [1]
12/21/2007 [2]

Optional PIV Data Object Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication

Optional PIV Data Object Implemented: *
1) Card Holder Facial Image
2) Card Holder Printed Information
3) X.509 Certificate for Digital Signature
4) X.509 Certificate for PIV Key Management
5) X.509 Certificate for Card Authentication